Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package fde-tools for openSUSE:Factory checked in at 2023-07-04 15:21:55 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/fde-tools (Old) and /work/SRC/openSUSE:Factory/.fde-tools.new.23466 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "fde-tools" Tue Jul 4 15:21:55 2023 rev:2 rq:1096676 version:0.6.5 Changes: -------- --- /work/SRC/openSUSE:Factory/fde-tools/fde-tools.changes 2023-06-05 18:06:19.483033390 +0200 +++ /work/SRC/openSUSE:Factory/.fde-tools.new.23466/fde-tools.changes 2023-07-04 15:22:10.722133068 +0200 @@ -1,0 +2,58 @@ +Tue Jul 4 07:02:19 UTC 2023 - Gary Ching-Pang Lin <g...@suse.com> + +- Add fde-tools-avoid-cleaning-temp-dir.patch to avoid cleaning + the temp directory when calling tpm_test + +------------------------------------------------------------------- +Tue Jul 4 02:59:34 UTC 2023 - Gary Ching-Pang Lin <g...@suse.com> + +- Update to version 0.6.5 + + LUKS2 keyslot management with the grub-tpm2 token + + Replace mkinitrd with dracut + +------------------------------------------------------------------- +Wed Jun 14 02:39:26 UTC 2023 - Gary Ching-Pang Lin <g...@suse.com> + +- Update to version 0.6.4 + + Add man page and bash completion support + + Switch to TPM 2.0 Key File for grub2 + + Update the installation paths + + Enable authorized policy by default + + Implement 'tpm-disable' command (bsc#1208834) +- Add a subpackage: fde-tools-bash-completion +- Use 'tpm-activate' in the systemd service file +- Add help2man to BuildRequires +- Drop the upstreamed patches + + fde-tools-tpm2.0-key-file-support.patch + + fde-tools-fix-paths.patch + + fde-tools-set-stop-event-for-tpm_authorize.patch + + fde-tools-enable-authorized-policy-by-default.patch + + fde-tools-reduce-iterations.patch + + fde-tools-set-grub.cfg-as-stop-event.patch + +------------------------------------------------------------------- +Thu Jun 8 08:31:15 UTC 2023 - Gary Ching-Pang Lin <g...@suse.com> + +- Fix the path in fde-tools.service + +------------------------------------------------------------------- +Wed Jun 7 00:57:26 UTC 2023 - Gary Ching-Pang Lin <g...@suse.com> + +- Add fde-tools-tpm2.0-key-file-support.patch to support TPM 2.0 + Key File for grub2 +- Bump the required pcr-oracle version to 0.4.5 for the TPM 2.0 Key + File support +- Add fde-tools-reduce-iterations.patch to reduce the iterations + for the key created by luks_add_random_key +- Add fde-tools-set-grub.cfg-as-stop-event.patch to set grub.cfg as + the stop event for the PCR prediction +- Add fde-tools-enable-authorized-policy-by-default.patch to switch + FDE_USE_AUTHORIZED_POLICIES to yes + +------------------------------------------------------------------- +Tue Jun 6 07:32:24 UTC 2023 - Marcus Meissner <meiss...@suse.com> + +- remove dracut and jeos-firstboot from buildrequires, just specify + the directory. + +------------------------------------------------------------------- Old: ---- fde-tools-0.6.3.tar.gz fde-tools-fix-paths.patch fde-tools-set-stop-event-for-tpm_authorize.patch New: ---- fde-tools-0.6.5.tar.gz fde-tools-avoid-cleaning-temp-dir.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ fde-tools.spec ++++++ --- /var/tmp/diff_new_pack.iLmR1f/_old 2023-07-04 15:22:11.338136770 +0200 +++ /var/tmp/diff_new_pack.iLmR1f/_new 2023-07-04 15:22:11.342136794 +0200 @@ -17,7 +17,7 @@ Name: fde-tools -Version: 0.6.3 +Version: 0.6.5 Release: 0 Summary: Tools required for Full Disk Encryption License: GPL-2.0-only @@ -26,15 +26,14 @@ Source: https://github.com/openSUSE/%{name}/archive/%{version}/%{name}-%{version}.tar.gz Source1: fde-tools.service Patch: fde-tools-firstboot-alp-snapshot.patch -Patch1: fde-tools-set-stop-event-for-tpm_authorize.patch -Patch2: fde-tools-fix-paths.patch -BuildRequires: dracut -BuildRequires: jeos-firstboot -BuildRequires: libfido2-devel +Patch1: fde-tools-avoid-cleaning-temp-dir.patch +BuildRequires: help2man BuildRequires: openssl >= 0.9.8 BuildRequires: tpm2-0-tss-devel +BuildRequires: pkgconfig(libcryptsetup) +BuildRequires: pkgconfig(libfido2) Requires: cryptsetup -Requires: pcr-oracle >= 0.4.2 +Requires: pcr-oracle >= 0.4.5 # Requires: tpm2.0-tools Requires: mokutil ExclusiveArch: aarch64 s390x ppc64le x86_64 riscv64 @@ -53,6 +52,17 @@ This package contains the scripts necessary to plug Full Disk Encryption into the JeOS Firstboot framework used for image based delivery of ALP. +%package bash-completion +Summary: Bash completion for fde-tools +Group: Productivity/File utilities +Requires: bash-completion +Requires: fde-tools +Supplements: (fde-tools and bash-completion) +BuildArch: noarch + +%description bash-completion +Bash shell completions for fde-tools + %prep %autosetup -p1 @@ -83,13 +93,22 @@ %files %{_sbindir}/fdectl -%{_bindir}/fde-token +%{_sbindir}/fde-token +%{_sbindir}/fdectl-grub-tpm2 %dir /etc/fde %{_fillupdir}/sysconfig.* %{_datadir}/fde %{_unitdir}/fde-tpm-enroll.service +%{_mandir}/man8/fdectl.8.gz +%dir %{_libdir}/cryptsetup/ +%{_libdir}/cryptsetup/libcryptsetup-token-*.so + +%files bash-completion +%{_datadir}/bash-completion/completions/fdectl %files -n fde-firstboot +%dir %{_datadir}/jeos-firstboot +%dir %{_datadir}/jeos-firstboot/modules %{_datadir}/jeos-firstboot/modules/fde %changelog ++++++ fde-tools-0.6.3.tar.gz -> fde-tools-0.6.5.tar.gz ++++++ ++++ 1771 lines of diff (skipped) ++++++ fde-tools-avoid-cleaning-temp-dir.patch ++++++ >From c7a39ab858c2022855353eadedc768af85b92cc9 Mon Sep 17 00:00:00 2001 From: Gary Lin <g...@suse.com> Date: Tue, 4 Jul 2023 14:56:57 +0800 Subject: [PATCH] Don't clean up the temp directory in tpm_test Both firstboot/fde and fdectl clean up the temp directory on exit. Calling fde_clean_tempdir in tpm_test would unset FDE_TEMP_DIR and make fde_make_tempdir fail afterward. Signed-off-by: Gary Lin <g...@suse.com> --- share/tpm | 1 - 1 file changed, 1 deletion(-) diff --git a/share/tpm b/share/tpm index aa9084f..90a3da3 100644 --- a/share/tpm +++ b/share/tpm @@ -94,7 +94,6 @@ function tpm_test { result=0 fi - fde_clean_tempdir return $result } -- 2.35.3 ++++++ fde-tools.service ++++++ --- /var/tmp/diff_new_pack.iLmR1f/_old 2023-07-04 15:22:11.474137587 +0200 +++ /var/tmp/diff_new_pack.iLmR1f/_new 2023-07-04 15:22:11.478137611 +0200 @@ -4,7 +4,7 @@ [Service] Type=oneshot -ExecStart=/sbin/fdectl tpm-enable +ExecStart=/usr/sbin/fdectl tpm-activate [Install] WantedBy=default.target
